The Hook: Scammers send emails that appear to be from Facebook, telling recipients that their Facebook password has been reset and they need to click on an attachment to retrieve it.
The Method: The attachment is a password stealer that installs when the user clicks on it.
The Danger: Once installed, the password stealer can potentially access any username and password combination utilized on that computer, not just for the user’s Facebook account.
This threat is potentially very dangerous considering that there are over 400 million Facebook users who could fall for this scam. This is also the sixth most prevalent piece of malware targeting consumers in the last 24 hours, as tracked by McAfee Labs.
Bottom Line: Facebook would never send an email alerting a user that they changed his or her password. Another clue that can signal a user has received a spam email is the use of poor grammar and awkward phrases such as in the below greeting “Dear user of facebook.” Please note that McAfee customers with current subscriptions are protected from this type of malware.
Here is an email example of the Facebook Password Reset Scam to watch out for:
Here is the latest global intelligence map that details where the scam is targeting Facebook users:
Tips to Avoid Becoming a Facebook Scam Victim:
Tip 1: Do not open the attachment. Promptly delete the Facebook scam email.
Tip 2: Consumers can protect their computer from this type of cybercrime by installing a complete security software suite that includes anti-virus, anti-spyware, and firewall protection.
Tip 3: Consumers should make sure they are running the most up-to-date security software and their subscription is active.
Tip 4: If consumers are unsure if their security software vendor has an update for this type of malware, McAfee recommends that they check for and install any available updates, then immediately run a full scan.
Lifted from McAfee Lab